· Pablo Plaza Martínez · cheatsheet
Port Forwarding - CheatSheet
Practical summary of port forwarding/tunnelling techniques in Linux and Windows (SSH, socat, netcat, meterpreter, plink, and netsh) for accessing internal services behind firewalls.
Tag: shell
· Pablo Plaza Martínez · cheatsheetCommands in Windows to obtain shell
Compilation of techniques for obtaining shell access in Windows after RCE. Includes in-memory PowerShell, Powercat, Regsvr32, HTA, Cscript, MSBuild, WMIC, Certutil, and tests against Windows Defender.
- · Pablo Plaza Martínez · writeups
WriteUp - Valentine (HackTheBox)
Valentine write-up (HackTheBox): classic Linux machine that exploits Heartbleed (CVE-2014-0160) to extract Apache's RSA private key, then uses the key to connect via SSH and escalate to root with a vulnerable binary.